[....] Starting enhanced syslogd: rsyslogd[   15.774697] audit: type=1400 audit(1519979503.348:5): avc:  denied  { syslog } for  pid=3966 comm="rsyslogd" capability=34  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting file context maintaining daemon: restorecond[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
Starting mcstransd: 
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   18.392268] audit: type=1400 audit(1519979505.966:6): avc:  denied  { map } for  pid=4106 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1
Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts.
net.ipv6.conf.syz_tun.accept_dad = 0
net.ipv6.conf.syz_tun.router_solicitations = 0
[   24.848959] audit: type=1400 audit(1519979512.422:7): avc:  denied  { map } for  pid=4120 comm="syzkaller232072" path="/root/syzkaller232072288" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1
[   24.857424] IPVS: ftp: loaded support on port[0] = 21
RTNETLINK answers: File exists
RTNETLINK answers: Operation not supported
RTNETLINK answers: No buffer space available
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
[   25.125210] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
RTNETLINK answers: Operation not supported
RTNETLINK answers: Operation not supported
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
RTNETLINK answers: Invalid argument
[   25.465888] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready
[   25.471975] 8021q: adding VLAN 0 to HW filter on device bond0
executing program
[   25.507144] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[   25.544631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   25.554151] TCP: request_sock_TCP: Possible SYN flooding on port 20003. Sending cookies.  Check SNMP counters.
[   30.687142] 
[   30.688773] ============================================
[   30.694189] WARNING: possible recursive locking detected
[   30.699606] 4.16.0-rc2+ #247 Not tainted
[   30.703630] --------------------------------------------
[   30.709045] syzkaller232072/4280 is trying to acquire lock:
[   30.714719]  (sk_lock-AF_SMC){+.+.}, at: [<000000003c81ac0a>] smc_close_non_accepted+0x1d/0x370
[   30.723539] 
[   30.723539] but task is already holding lock:
[   30.729476]  (sk_lock-AF_SMC){+.+.}, at: [<00000000952086ed>] smc_close_active+0x8d9/0x11f0
[   30.737934] 
[   30.737934] other info that might help us debug this:
[   30.744566]  Possible unsafe locking scenario:
[   30.744566] 
[   30.750588]        CPU0
[   30.753136]        ----
[   30.755683]   lock(sk_lock-AF_SMC);
[   30.759275]   lock(sk_lock-AF_SMC);
[   30.762867] 
[   30.762867]  *** DEADLOCK ***
[   30.762867] 
[   30.768892]  May be due to missing lock nesting notation
[   30.768892] 
[   30.775784] 1 lock held by syzkaller232072/4280:
[   30.780504]  #0:  (sk_lock-AF_SMC){+.+.}, at: [<00000000952086ed>] smc_close_active+0x8d9/0x11f0
[   30.789398] 
[   30.789398] stack backtrace:
[   30.793861] CPU: 0 PID: 4280 Comm: syzkaller232072 Not tainted 4.16.0-rc2+ #247
[   30.801271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   30.810592] Call Trace:
[   30.813149]  dump_stack+0x194/0x24d
[   30.816744]  ? arch_local_irq_restore+0x53/0x53
[   30.821384]  __lock_acquire+0xe8f/0x3e00
[   30.825414]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   30.830660]  ? free_object+0x150/0x230
[   30.834515]  ? lock_release+0xa40/0xa40
[   30.838456]  ? check_noncircular+0x20/0x20
[   30.842659]  ? check_noncircular+0x20/0x20
[   30.846862]  ? check_noncircular+0x20/0x20
[   30.851065]  ? check_noncircular+0x20/0x20
[   30.855266]  ? smc_accept_dequeue+0x273/0x7c0
[   30.859726]  ? lock_downgrade+0x980/0x980
[   30.863843]  ? find_held_lock+0x35/0x1d0
[   30.867875]  lock_acquire+0x1d5/0x580
[   30.871643]  ? lock_sock_nested+0xa3/0x110
[   30.875845]  ? lock_acquire+0x1d5/0x580
[   30.879787]  ? smc_close_non_accepted+0x1d/0x370
[   30.884513]  ? lock_release+0xa40/0xa40
[   30.888454]  ? trace_event_raw_event_sched_switch+0x810/0x810
[   30.894305]  ? do_raw_spin_trylock+0x190/0x190
[   30.898852]  ? lock_sock_nested+0x44/0x110
[   30.903056]  lock_sock_nested+0xc2/0x110
[   30.907084]  ? smc_close_non_accepted+0x1d/0x370
[   30.911807]  smc_close_non_accepted+0x1d/0x370
[   30.916355]  smc_close_active+0x9aa/0x11f0
[   30.920555]  ? smc_close_wake_tx_prepared+0x90/0x90
[   30.925543]  ? find_held_lock+0x35/0x1d0
[   30.929574]  ? print_irqtrace_events+0x270/0x270
[   30.934294]  ? find_held_lock+0x35/0x1d0
[   30.938322]  ? lock_acquire+0x1d5/0x580
[   30.942261]  ? lock_sock_nested+0xa3/0x110
[   30.946468]  ? lock_acquire+0x1d5/0x580
[   30.950413]  ? smc_release+0x367/0x580
[   30.954270]  ? do_raw_spin_trylock+0x190/0x190
[   30.958824]  ? __local_bh_enable_ip+0x121/0x230
[   30.963463]  ? __init_waitqueue_head+0x140/0x140
[   30.968186]  ? trace_hardirqs_on+0xd/0x10
[   30.972303]  ? __local_bh_enable_ip+0x121/0x230
[   30.976942]  smc_release+0x379/0x580
[   30.980624]  sock_release+0x8d/0x1e0
[   30.984303]  ? sock_alloc_file+0x560/0x560
[   30.988507]  sock_close+0x16/0x20
[   30.991928]  __fput+0x327/0x7e0
[   30.995176]  ? fput+0x140/0x140
[   30.998425]  ? trace_event_raw_event_sched_switch+0x810/0x810
[   31.004279]  ____fput+0x15/0x20
[   31.007526]  task_work_run+0x199/0x270
[   31.011383]  ? task_work_cancel+0x210/0x210
[   31.015671]  ? free_nsproxy+0x18b/0x1f0
[   31.019612]  ? switch_task_namespaces+0xa2/0xc0
[   31.024251]  do_exit+0x9bb/0x1ad0
[   31.027671]  ? find_held_lock+0x35/0x1d0
[   31.031704]  ? mm_update_next_owner+0x930/0x930
[   31.036349]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   31.041511]  ? lock_downgrade+0x980/0x980
[   31.045626]  ? __unqueue_futex+0x1c0/0x290
[   31.049827]  ? lock_release+0xa40/0xa40
[   31.053767]  ? fault_in_user_writeable+0x90/0x90
[   31.058497]  ? do_raw_spin_trylock+0x190/0x190
[   31.063049]  ? futex_wake+0x680/0x680
[   31.066823]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   31.071992]  ? drop_futex_key_refs.isra.13+0x63/0xb0
[   31.077063]  ? futex_wait+0x6a9/0x9a0
[   31.080833]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   31.085992]  ? check_noncircular+0x20/0x20
[   31.090199]  ? drop_futex_key_refs.isra.13+0x63/0xb0
[   31.095268]  ? futex_wake+0x2ca/0x680
[   31.099039]  ? memset+0x31/0x40
[   31.102285]  ? find_held_lock+0x35/0x1d0
[   31.106315]  ? get_signal+0x7a9/0x16d0
[   31.110169]  ? lock_downgrade+0x980/0x980
[   31.114287]  do_group_exit+0x149/0x400
[   31.118141]  ? do_raw_spin_trylock+0x190/0x190
[   31.122689]  ? SyS_exit+0x30/0x30
[   31.126113]  ? _raw_spin_unlock_irq+0x27/0x70
[   31.130576]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   31.135575]  get_signal+0x73a/0x16d0
[   31.139267]  ? ptrace_notify+0x130/0x130
[   31.143307]  ? reacquire_held_locks+0x1f9/0x3e0
[   31.147954]  ? find_held_lock+0x35/0x1d0
[   31.151994]  ? release_sock+0x1d4/0x2a0
[   31.155937]  ? lock_downgrade+0x980/0x980
[   31.160055]  ? lock_downgrade+0x980/0x980
[   31.164169]  ? lock_release+0xa40/0xa40
[   31.168115]  do_signal+0x90/0x1e90
[   31.171623]  ? __local_bh_enable_ip+0x121/0x230
[   31.176261]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   31.181252]  ? release_sock+0x1d4/0x2a0
[   31.185193]  ? trace_hardirqs_on+0xd/0x10
[   31.189307]  ? __local_bh_enable_ip+0x121/0x230
[   31.193942]  ? setup_sigcontext+0x7d0/0x7d0
[   31.198231]  ? _raw_spin_unlock_bh+0x30/0x40
[   31.202607]  ? release_sock+0x1d4/0x2a0
[   31.206547]  ? __release_sock+0x360/0x360
[   31.210662]  ? lock_sock_nested+0x91/0x110
[   31.214867]  ? trace_hardirqs_on+0xd/0x10
[   31.218985]  ? __local_bh_enable_ip+0x121/0x230
[   31.223636]  ? exit_to_usermode_loop+0x8c/0x2f0
[   31.228276]  exit_to_usermode_loop+0x258/0x2f0
[   31.232827]  ? vfs_writev+0x340/0x340
[   31.236594]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   31.242098]  ? do_syscall_64+0xb6/0x940
[   31.246048]  do_syscall_64+0x6e5/0x940
[   31.249909]  ? __do_page_fault+0xc90/0xc90
[   31.254115]  ? _raw_spin_unlock_irq+0x27/0x70
[   31.258578]  ? finish_task_switch+0x1c1/0x7e0
[   31.263044]  ? syscall_return_slowpath+0x550/0x550
[   31.267950]  ? syscall_return_slowpath+0x2ac/0x550
[   31.272845]  ? prepare_exit_to_usermode+0x350/0x350
[   31.277831]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[   31.283163]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   31.287973]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[   31.293129] RIP: 0033:0x446bc9
[   31.296286] RSP: 002b:00007fb04b3eed58 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   31.303961] RAX: fffffffffffffe00 RBX: 00000000006dcc24 RCX: 0000000000446bc9
[   31.311199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000006dcc24
[   31.318443] RBP: 0000000000000000 R08: 0000000020000080 R09: 0000000020000080
[   31.325795] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dcc20
[   31.333040] R13: 00007ffd2d6a6f2f R14: 00007fb04b3ef9c0 R15: 0000000000000005